CVE-2019-17436 — Improper Privilege Management in Paloaltonetworks Globalprotect

CWE-269 — Improper Privilege Management4 documents4 sources

Severity

7.1HIGHNVD

EPSS

0.0%

top 88.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Paloaltonetworks Globalprotect Palo Alto Networks Globalprotect Agent FOR Linux AND OSX Paloalto Globalprotect APP

Timeline

PublishedOct 16

Latest updateMay 24

Description

A Local Privilege Escalation vulnerability exists in GlobalProtect Agent for Linux and Mac OS X version 5.0.4 and earlier and version 4.1.12 and earlier, that can allow non-root users to overwrite root files on the file system.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages3 packages

▶CVEListV5palo_alto_networks/globalprotect_agent_for_linux_and_osx4.1.12 and earlier, 5.0.4 and earlier+1

▶NVDpaloaltonetworks/globalprotect5.0.4+1

▶Palo Altopaloalto/globalprotect_app

🔴Vulnerability Details

GHSA

GHSA-hvj2-cfcv-qmc2: A Local Privilege Escalation vulnerability exists in GlobalProtect Agent for Linux and Mac OS X version 5↗2022-05-24

▶

CVEList

CVE-2019-17436: A Local Privilege Escalation vulnerability exists in GlobalProtect Agent for Linux and Mac OS X version 5↗2019-10-16

▶

📋Vendor Advisories

Palo Alto

Local Privilege Escalation in GlobalProtect App for Linux and Mac OS↗2019-10-15

▶